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AMENDMENTS TO THE CLAIMS: 

I ,(cuiTertly amended): A commumcation network system having a central 
management device and a plurality of local area network systems, said central management 
device and said plurality of local area network systems being connected to each other, each of 
the plurality of local area network systems having a router and a terminal wliich are connected to 
each other via a local area network, 

said central management device comprising: 

a management database for storing at least one common key, each public key 
assigned to each router and a public key assigned to the central management device; and 

a central-side encryption irait for encrypting tlie common Icey by using each 
public key assigned to each router, and sending the encrypted common key to each router; 
said router comprising: 

a first router-side decryption miit for decrypting the encrypted conmion key sent 
from said central-side encryption unit by using a secret key of the roatei" 

a storage unit for storing the common key after decryption by said first router-side 
decryption unit; and 

a router-side encryption unit for encrypting commumcation data to be sent from a 
first source terminal in a local area network system of the router to a first destination temiinal in 
another local area network system, or commumcation data to be sent from the router to the 
central management device, by using the common key stored in said storage unit, and sending 
the encrypted communication data to another local area network or the central management 
device , wherein 
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said central-side encr yption unit enci-v}its the public keys and sends said 
encrypted public keys to each router. 

said first router- side decryption unit deci-ypts the encrypted public keys sent from 
the central-side encryption unit bv using the secret kev of the router, 

said storag e unit stores the public keys after decryption by said first router-side ' 
decryption unit, and 

said router-side encryption unit selects the public key for a router of another local 
area network system or the central rnanasfement device to be a destination fi'om the public keys 
stored in the storage unit, encrypts the common key by using the selected public key, and sends 
the encrypted common kev to another local area network or the central management deyice. 
together with the encrypted communi cation data . 

2. (Cancelled): 

■ 

3. (original): The communication network system according to claim 1 , wherein 

said management database fUrther stores secret concealment terminal data 
indicating a combination of one terminal in one of the plurality of local area network systems 
and anotliei^ teiininal in another of the plurality of local area network systems^ data 
communicated between one and another terminals of said combination being required to be 
encrypted; 

said central-side encryption unit encrypts the secret concealment terminal data by 
using each public key assigned to eadi router, and sends the encrypted secret conceahnent 
terminal data to each router. 
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said first router-side decryption unit decrypts the encrypted secret concealment 
terminal data sent by the central-side encryption unit by using the secret key of tlie router, 

said storage unit stores the secret concealment terminal data after decryption, and 
said router-side encryption luiit encrypts the communication data if the 
combination of the first source terminal and the first destination terminal is contained in the 
secret concealment tenninal data* 

4. (6riginal): The communication network system according to claim 1, wherein said 
router further comprises: 

a second router-side decryption unit for decrypting data sent fiom a second source 
teraiinal in another local ai'ea network system to a second destination temunal in tlie local area 
network system of the router, and sending the data after decryption to said second destination 
tenninal. 

5. Coriginal): The cornmunication network system according to claim 4, wherein 

said management database Anther stores secret concealment tenninal data 
indicating a combination of one tenninal in one of the plurality of local area network systems 
and another terminal in another of the plurality of local area network systems, data 
communicated between one and another terminals of said combination being required to be 
encrypted, 

$aid central-side encryption unit encrypts said secret concealment terminal data by 
using each public key assigned to each router, and sends the encrypted secret conceahnent 
tenninal data to each router. 
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said first router-side decryption miH decrypts the encrypted secret concealment 
temiiiial data sent by the central side encryption unit, by iismg the secret key of the router, 

said storage unit stores the secret concealment tenninal data after decryption, and 
said second router-side decryption unit decrypts the conunumcation data if the 
combination of the second source terminal and the second destination terminal is contained in the 
secret conceahnent terminal data. 

6. (original): The communication network system according to claim 1, wherein 

if the common key stored in the management database is updated, said central- 
side encryption tmi t encrypts tlie updated common key and sends die updated and encrypted 
common key, and said first router-side decryption unit decrypts tlie updated and enci-ypted 
common key, and said storage unit substitutes the ahready stored common key by the updated 
common key after decryption, for storage. 

7. (Currently Amended): The communication network system according to eteim 
3claim |, wherein 

if the public key stored in the management database is updated, said central-side 
encryption unit encrypts the updated public key and sends the updated and encrypted public key, 
and said first router-side decryption imit decrypts the updated and encrypted public key, and said 
storage luiit substitutes the ahready stored public key by the updated public key after decryption, 
for storage. 

8. (origLnal): The communication network system according to claim 3, wherein 
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if said secret concealment termiiial data stored iii the management database is 
updated, said central-side encryption unit encrypts the updated secret concealment teiminal data 
and sends the updated and encrypted secret concealment tenTiinal data, and said first router-side 
decryption unit decrypts the updated and encrypted secret conceahnent terminal data, and said 
storage unit substitutes the already stored secret concealment terminal data by the updated secret 
concealment terminal data after decryption, for storage. 

9. (previously presented): The communication network system according to claim 5, 
wherein 

if said secret concealment terminal data stored in the management database is 
updated, said central-$ide encryption unit encrypts the updated secret conceahnent terminal data 
and sends the updated and encrypted secret concealment terminal data, and said first router-side 
decryption unit decrypts die updated and encrypted secret concealment terminal data, and said 
storage unit substitutes the akeady stored secret concealment terminal data by the updated secret 
concealment tenninal data after decryption, for storage. 

1 0. (Curren tl y Amended); A communication method in a communication network 
system having a central management device and a pluraUty of local area network systems, said 
central management device and said pluraUty of local area network systems being connected to. 
each other, each of the plurality of local area network systems having a router and a terminal 
which are connected to each otlier via a local area network, comprising steps of: 

in said central management device. 
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encrypting at least one common key stored in a raanagement database in advance 
by using each public key assigned to each router, each public key being stored in said 
management database in advance; and 

sending ihe encrypted common key to each router, and 
in said router, 

decrypting the encrypted common key sent from the centi'al management device 
by using a secret key of the router; 

encrypting communication data to be sent from a source terminal in a local mea 
network system of the router to a destination terminal in anotlier local area network system, or 
communication data to be sent from the router to the central management device by using the 
common key; and 

sending the encrypted comjnunication data to another local area network or the ' 
central management device^ 
and further comprising the steps of: 

in said central manage ment device. 

encrypting the public keys: and 
sending said encrypted public kevs to each router, and 
in said router . 

decrypting the en crypted pubUc kevs sent from die central-side encryption unit by 
using the secret key of the router. 

selectinta tlic publ ic kev for a router of another local area network system or the 
central ma nagement device to be a destination fi'om the public kevs. 

encrypting the common kev bv using the selected pubh'c kev, and 
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sending th e encrypted coTnmon key to another local area petwork of tlie 
central management device, together with the e ncrypted coTTimunication data . 

1 LCCurrently amended): A router disposed in each of a plurality of local area network 
systems wliich are connected to a central management device, the router being connected via a 
local area network to a terminal disposed in each of the plurality of locaJ area network systems/ 
the router conqprising: 

a decryption unit for decrypting an encrypted common key sent from said central 
management device, by using a secret key for said router, said common key being encrypted by 
using a public key for the router; 

a storage unit for storing said common key after decryption by said decryption 

unit; and 

an encryption unit for encrypting communication data to be sent jQrom a source . 
terminal in a local area network system of said router to a destination terminal in another local 
area network system, or communication data to be sent from said router to the central 
management device, by using the common key stored in said storage unit, and sending the 
encrypted comraunicatibD data to another local area network or the central management device^ 
wherein 

said decryption unit decrypts the enervated n ubUc kevs sent from said centra} 

manageme nt device by using the secret kev of the router, 

said storage unit stores the public kevs after decryption bv said decryption unit, and 
said encryption unit selects tlie public l^ ev for a router of another local area network 

system or the central m anagement device to be a destination from the public kevs stored in the 
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storage unit, encrypts the conimon kev bv usi ng the selected public key, and sends the encrypted 
common key to another local are a network or tlie 'centi-a.1 management device, together with the 
encrypted communication data . 

12.(original): A communication metliod of a router in each of a plurality of local area 
network systems which are connected to a central management device, said router being 
connected to a terminal via a local area network, comprising steps of: 

decrypting an encrypted conmion key sent from said central management device 
by using a secret key for said router, said common key being encrypted by using a pnbUc key for 
said router; 

storing tJie common key after decryption in a storage unit in the router; 

encrypting communication data to be sent from a source terminal in a local area 
network system of the router to a destination terminal in another local area network system, or 
communication data to be sent from the loiiter to the central management device, by using the 
common key stored in the storage unit; and 

sending tlie encrypted communication data to another local area network or to the 
central management devic e, and ftuiher comprising the steps of: 

decrypting the encrypted p ublic kevs sent from said central management device bv using 
the secret key of the router, 

storing die pubHc keys after decryption bv said decryption unit 
selecting the public kev for a router of another local area network system of tlie central 
management device to be a desti nation fiiom the public keys stored in the stornffe imi>^ 
encrvpti]ip the common key bv using the selected public key, and 
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sending the encrypted common key to anotlier local area network or the central 
management device, together with the encrypted commimicatioii data . 

13.(CmTently Amendedl): A program product executed by a router disposed in each of 
a pliu^lity of local area network systems wliich are connected to a central mm^agement device, 
the router being connected via a local area network to a terminal disposed in each of the plurality 
of local area network systems, said program product comprising steps of: 

decrypting an encrypted common key seat bom the central management device 
by using a secret key of the router, said common key being encrypted by using a public key of 
the router; 

{Storing said common key after decryption in a storage unit of the router; 
encrypting communication data to be sent from a source terminal in a local area 
network system of the router to a destination terminal in another local area network system, or • 
communication data to be sent from the router to the central management device, by using the 
common key stored in the storage unit; and 

sending the encrypted communication data to another local area network or to the 
central management devic e, and further cQmprisinp the steps of: 

decrvnting the encrypted public keys sent from said central management device bv uaing 
the secret kev of the router- 
storing the public kevs after decryption bv said decryption unit, 
selecting tlie p ublic kev for a router of anotlier local area network system of tlie cential 
management device to be a destination from the public kevs stored in the storage unit, 
encrypting tlie common kev bv using the selected public key, and 
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sending the encrypted coxnniQn key to another local area network or the central 
management device, together vyitli the encrypted cotttomnication date . 

M.CCurreaitly Amended): A central management device connected to a.plurality of 
local area network systems each having a router and a terminal which are connected to each 
other tlirough a local area network, tli© central management device comprising: 

a management database for storing at least one common key, each public key 
assigned to each router and a public key assigned to said central management device, said at least 
one common key being used by each router to encrypt communication data to be communicated 
between a terminal of a local area network system and a ten-ninal of another local area network 
system, or between each router and the central management device; and 

an encryption unit for encrypting the common key by using each public key 
assigned to each router, and sending the encrypted common key to each route r, wherein 

the encrypted c ommon kev by using the public kev is transmitted to between the temiinal 
of the loc al area network system and another local area network svstem with the encrypted data 
by usin^ the common kev . 

15.(Cuxrently Amended): A management method of a central management device 
connected to a plurality of local area network systems each having a router and a terminal which 
are connected to each other through a local area network, the management method comprising 
steps of: 

storing in a management database and managing at least one common key, each 
public key assigned to each router and a public key assigned to said central management device. 
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said at lea^t one common key being used by each router to encrypt communication data to be 
communicated between a terminal in a local area network system and a terminal in another local 
area network system, or between a router and the central mahagement device; 

encrypting the common key by using each public key assigned to each router; and 
sending the encrypted common key to each route r, wherein 
the encrypted co mmon kev bv using the public key is tranamitted to between the 
terminal of the local area network system and another local area network system with the 
encrypted data bv using the common kev . 

1 6.(Currently Amended): A program product executed by a computer installed in a 
central management device connected to a plurality of local area network system each having a 
router and a terminal which are connected to each other through a local area network, said 
program product comprising steps of: 

storing in a management database and managing at least one common key, each 
public key assigned to each router and a public key assigiied to said central management device, 
said at least one common key being used by each router to encj-ypt communication data to be 
conmiunicated between a terminal in a local area network system and a terminal in another local 
area network system, or between a router and the central management device; 

encrypting the common key by using each public key assigned to each router; and 
sending the encrypted common key to each route r, wherein 
the encrypted common kev b y usmg the public kev is transmitted to between the 
terminal of the local area networ k system and another local area network system with the 
encrypted data bv using the common kev . 
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